CVE-2021-20230

Опубликовано: 23 фев. 2021

Источник: ubuntu

Приоритет: medium

CVSS2: 5

CVSS3: 7.5

Описание

A flaw was found in stunnel before 5.57, where it improperly validates client certificates when it is configured to use both redirect and verifyChain options. This flaw allows an attacker with a certificate signed by a Certificate Authority, which is not the one accepted by the stunnel server, to access the tunneled service instead of being redirected to the address specified in the redirect option. The highest threat from this vulnerability is to confidentiality.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needed
devel	not-affected	3:5.63-1ubuntu1
esm-apps/bionic	released	3:5.44-1ubuntu3+esm1
esm-apps/focal	released	3:5.56-1ubuntu0.2
esm-apps/jammy	not-affected	3:5.63-1build1
esm-apps/noble	not-affected	3:5.63-1ubuntu1
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	not-affected	code not present
focal	released	3:5.56-1ubuntu0.2
groovy	ignored	end of life

Показывать по

Ссылки на источники

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-20230

CVSS3: 7.5

redhat

больше 4 лет назад

CVE-2021-20230

CVSS3: 7.5

nvd

больше 4 лет назад

CVE-2021-20230

CVSS3: 7.5

debian

больше 4 лет назад

A flaw was found in stunnel before 5.57, where it improperly validates ...

openSUSE-SU-2021:0409-1

suse-cvrf

больше 4 лет назад

Security update for stunnel

SUSE-SU-2021:1465-1

suse-cvrf

около 4 лет назад

Security update for stunnel

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2021-20230

Описание

Пакет stunnel4

Ссылки на источники

Связанные уязвимости